Authorization libraries
Posted: Fri Jun 13, 2008 3:15 pm
i have been searching for some authorization libraries so that i do not reinvent the wheel. i have common kind of entities as most applications have.
the following are there
1. objects
2. different actions that can be perfomed on those objects
3. users
4. groups
a common complex condition may be
an owner can only edit an article but anyone can view an article.
or they may be silly multiple custom checks to be perfomed before action is allowed on an object.
i did go through Zend_Acl but it seems to be simple, jus resource -> group mapping. I was going through PEAR, there is one called LiveUser_Admin but it does not have any good end user documentation.
you guys aware of any reliable authorization library around?
thanks.
the following are there
1. objects
2. different actions that can be perfomed on those objects
3. users
4. groups
a common complex condition may be
an owner can only edit an article but anyone can view an article.
or they may be silly multiple custom checks to be perfomed before action is allowed on an object.
i did go through Zend_Acl but it seems to be simple, jus resource -> group mapping. I was going through PEAR, there is one called LiveUser_Admin but it does not have any good end user documentation.
you guys aware of any reliable authorization library around?
thanks.